NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Can't find latest CBR40 Firmware as Described in Security Bulletin
Security bullitens list this info:
NETGEAR has released fixes or hotfixes for an unauthenticated command injection security vulnerability on the following product models:
- CBR40, running firmware versions prior to 2.6.1.38
But on the download page only this is listed:
Firmware and Software Downloads
- Current Versions
- CBR40 Firmware Version 2.5.0.14
Where do I go to find the latest release?
Even weirder: the RBS20 firmware (2.6.2.104) they have that is supposed to fix this hole is not compatible with my RBS20. Too funny.
Top Support Articles
- EU Declarations of Conformity
- RBR20 / RBS20 Firmware Version 2.6.2.104
7 Replies
Where do you find this information?
Nothing posted yet on NG download site:
https://www.netgear.com/support/product/CBK40.aspx#download
Something to contact NG support about and see.
The RBS20 firmware link that my slave says is incompatible is at:
https://www.netgear.com/support/product/RBS20.aspx#download
Top Support Articles- EU Declarations of Conformity
- RBR20 / RBS20 Firmware Version 2.6.2.104 <=====
- Which security features does my Orbi WiFi System support?
- Security Advisory for Security Misconfiguration on Some Routers, Range Extenders, and Orbi WiFi Systems, PSV-2020-0112
- Security Advisory for Unauthenticated Command Injection Vulnerability on Some Extenders and Orbi WiFi Systems, PSV-2020-0301
- Security Advisory for Stored Cross Site Scripting on Some Routers and Orbi WiFi Systems, PSV-2018-0539
You need to use what is avialable from the CBK site:
https://www.netgear.com/support/product/CBK40.aspx#download
Untill NG makes it compatible with the CBR40.
